| Revision Date: | 2005-10-12 | Version: | 3 |
| Title: | RHE3 Fetchmail Buffer Overflow via Long UIDL Responses |
| Description: | Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. NOTE: a typo in an advisory accidentally used the wrong CVE identifier for the Fetchmail issue. This is the correct identifier. |
| Family: | unix | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2005-2335
|
| Platform(s): | Red Hat Enterprise Linux 3
| Product(s): | fetchmail
|
| Definition Synopsis |
| Software section Red Hat Enterprise 3 is installed
AND fetchmail RPM older than 0:6.2.0-3.el3.1
AND Configuration section
/usr/bin/fetchmail is executable by any user
|